Vulnerabilities > Mongodb > JS Bson > 0.5.2

DATE CVE VULNERABILITY TITLE RISK
2020-03-31 CVE-2019-2391 Deserialization of Untrusted Data vulnerability in Mongodb Js-Bson
Incorrect parsing of certain JSON input may result in js-bson not correctly serializing BSON.
network
low complexity
mongodb CWE-502
5.4
5.4
2018-07-10 CVE-2018-13863 Unspecified vulnerability in Mongodb Js-Bson
The MongoDB bson JavaScript module (also known as js-bson) versions 0.5.0 to 1.0.x before 1.0.5 is vulnerable to a Regular Expression Denial of Service (ReDoS) in lib/bson/decimal128.js.
network
low complexity
mongodb
5.0
5.0